EgO v0.7b (fckeditor) Remote File Upload

2010-05-16T00:00:00
ID 1337DAY-ID-12261
Type zdt
Reporter Itsecteam
Modified 2010-05-16T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ========================================
EgO v0.7b (fckeditor) Remote File Upload
========================================


##########################################################
#Title: EgO v0.7b (fckeditor) Remote File Upload
#Download: http://sourceforge.net/projects/vairux-ego/
##########################################################
#AUTHOR: ITSecTeam
#Email: [email protected]
#Website: http://www.itsecteam.com
#Forum : http://forum.ITSecTeam.com
#Original Advisory: www.ITSecTeam.com/en/vulnerabilities/vulnerability53.htm
#Thanks: r3dm0v3,[email protected],pejvak,[email protected]
##########################################################

#DESCRIPTION (by vendor):#################################
EgO is a PHP script that makes easier the set up and administration of a
website.
EgO supports customizable skins and modules that would be designed to fit
specific
needs.EgO features a new WYSIWYG editor (FCKEditor), dynamic RSS 2.0
Syndication, etc..

#POC:#####################################################
http://site.com/FCKEditor/editor/filemanager/browser/
default/connectors/test.html



#  0day.today [2018-03-10]  #